5.3
CVE-2025-8257
- EPSS 0.02%
- Veröffentlicht 28.07.2025 04:32:05
- Zuletzt bearbeitet 31.07.2025 17:58:54
- Quelle cna@vuldb.com
- CVE-Watchlists
- Unerledigt
LoginA vulnerability classified as problematic was found in Lobby Universe Lobby App up to 2.8.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.maverick.lobby. The manipulation leads to improper export of android application components. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Lobbyuniverse ≫ Lobby Version2.0 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.1 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.2 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.3 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.4 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.5 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.6 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.7 SwPlatformandroid
Lobbyuniverse ≫ Lobby Version2.8.0 SwPlatformandroid
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.051 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| cna@vuldb.com | 5.3 | 1.8 | 3.4 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
|
| cna@vuldb.com | 4.8 | 0 | 0 |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| cna@vuldb.com | 4.3 | 3.1 | 6.4 |
AV:L/AC:L/Au:S/C:P/I:P/A:P
|
CWE-926 Improper Export of Android Application Components
The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains.